Firewalls Don't Stop Dragons Podcast

Dive into the murky waters of online privacy! Learn how data brokers collect your personal information and discover an easy way to remove it. Meta's new policy allows ads based on your AI chats, while Google's shopping tool raises eyebrows about AI handling purchases. Explore OpenTable's controversial guest profiling and the revelation of the first AI-driven espionage campaign. With lawmakers pushing VPN bans and new health privacy regulations on the table, the landscape of your digital safety is evolving fast.

In a powerful discussion, Grace Menna, a public interest cybersecurity fellow, joins legal expert Michael Razeeq, emergency management coordinator Eric Franco, and COO Adrien Ogee. They explore the urgent need for cybersecurity volunteers to support under-resourced organizations facing increasing cyber threats. Topics include the formation of the Cyber Resilience Corps, the challenges of trust and confidentiality in volunteer efforts, and strategies for sustainable funding. The team emphasizes the importance of empowering communities to be self-sufficient and advocates for legal reforms to improve cybersecurity practices.

Today we’ll wrap up my series of tips for enumerating all your old online accounts and deciding whether to delete them or just dumb down the personal data they have on you. There are several things to consider – we’ll go through them all! In other news: a study ranks the most private AI chatbots; LinkedIn is set to use your personal data to train their AI; ChatGPT has released an AI browser; new phishing scam for password manager creds; Gmail did not leak 183M passwords; man discovers his robot vacuum sharing lots of personal data; more info on Cellebrite’s mobile hacking abilities; Flock expanded its surveillance with Ring and drones; and group finds that half of our satellite communications are not encrypted. Article Links Which Generative AI Is Most Privacy-Respecting? https://www.obscureiq.com/which-generative-ai-is-most-privacy-respecting/ LinkedIn will use your data to train AI – how to opt out https://proton.me/blog/linkedin-ai-training Chatgpt Atlas Browser https://www.washingtonpost.com/technology/2025/10/22/chatgpt-atlas-browser/ Phishing scam uses fake death notices to trick LastPass users https://www.malwarebytes.com/blog/news/2025/10/phishing-scam-uses-fake-death-notices-to-trick-lastpass-users No, Gmail has not suffered a massive 183 million passwords breach https://www.techradar.com/pro/security/no-gmail-has-not-suffered-a-massive-183-million-passwords-breach-but-you-should-still-look-after-your-data Man Alarmed to Discover His Smart Vacuum Was Broadcasting a Secret Map of His House https://futurism.com/robots-and-machines/robot-vacuum-broadcasting Someone Snuck Into a Cellebrite Microsoft Teams Call and Leaked Phone Unlocking Details https://www.404media.co/someone-snuck-into-a-cellebrite-microsoft-teams-call-and-leaked-phone-unlocking-details/ Ring cameras are about to get increasingly chummy with law enforcement https://arstechnica.com/gadgets/2025/10/ring-cameras-are-about-to-get-increasingly-chummy-with-law-enforcement/ Exclusive: Flock Safety paid over $300 million for 17-month-old drone startup Aerodome https://techcrunch.com/2024/10/23/flock-safety-paid-over-300-million-for-17-month-old-drone-startup-aerodome/ Leak From the Sky: It Turns Out a Lot of Satellite Data Is Unencrypted” https://www.pcmag.com/news/leak-from-the-sky-it-turns-out-a-lot-of-satellite-data-is-unencrypted Tip of the Week: https://firewallsdontstopdragons.com/removing-old-accounts/  Further Info Data Diet series: https://firewallsdontstopdragons.com/data-diet-introduction/  Backing up 2FA seed codes: https://firewallsdontstopdragons.com/how-to-backup-2fa-seed-codes/  Using email aliases: https://firewallsdontstopdragons.com/how-to-use-email-aliases-part-1/  Claudito: https://github.com/micahflee/claudito  LM Studio: https://lmstudio.ai/  Dark Wire book: https://www.hachettebookgroup.com/titles/joseph-cox/dark-wire/9781541702691/  My book: https://fdsd.me/book  My newsletter: https://fdsd.me/newsletter  Support our mission! https://fdsd.me/support  Give the gift of privacy and security: https://fdsd.me/coupons  Get your Firewalls Don’t Stop Dragons Merch! https://fdsd.me/merch  Table of Contents 0:00:07: Intro 0:00:27: News briefs 0:01:49: News preview 0:03:53: Which AI Is Most Privacy-Respecting? 0:09:21: LinkedIn will use your data to train AI 0:14:23: ChatGPT’s new Altas browser 0:21:46: Phishing scam uses fake death notices 0:25:32: Gmail has NOT suffered a massive password breach 0:27:57: Man finds smart vacuum sending maps of home 0:33:41: More Cellebrite capability details leak 0:38:28: Flock inks deal with Ring cameras 0:42:57: Flock Safety buys drone company 0:46:52: Half of satellite comms are unencrypted 0:51:26: Tip of the Week 1:00:01: Patron podcast preview 1:00:18: Looking ahead 1:01:39: New patron promotion coming?

In this engaging discussion, Eamonn Maguire, Director of Engineering for AI at Proton, dives into the urgent privacy concerns surrounding AI chatbots. He highlights the risks of data harvesting and the implications of training AI on personal information. Eamonn explains Proton's innovative Lumo model, designed to prioritize privacy with zero access encryption and a no-logs policy. He also shares the importance of transparency, the potential of open-source technology, and how local-only options can enhance user security in a rapidly evolving digital landscape.

This discussion tackles the importance of securing old online accounts and downloading personal data before deciding to delete or suspend them. It also highlights alarming news like the end of Windows 10 support and seniors being targeted by malware on Facebook. Privacy concerns rise with the risks of Tile trackers being exploited, a massive Salesforce data leak, and a major Discord breach exposing sensitive user information. Plus, new age-verification laws in Texas and California spark privacy debates.

Jake Braun, co-founder of DEF CON Franklin and former acting principal deputy national cyber director, discusses the vulnerabilities in our critical infrastructure, particularly water utilities. He explains how the pandemic increased cyber threats, necessitating volunteer efforts to bolster security. Braun emphasizes the need for civic engagement and shares insights from pilot programs aimed at helping utilities enhance their defenses. He also highlights the challenges small utilities face and encourages listeners to get involved and support these crucial initiatives.

In this engaging conversation, Paul Roberts, a cybersecurity journalist and founder of the Secure Resilient Future Foundation, discusses the pressing issue of insecure IoT devices. He highlights the dangers of abandoned devices as tech time bombs that can lead to botnets and national security risks. Paul advocates for the right to repair, explaining how it can enhance security and longevity. He also emphasizes the need for transparency in device support lifecycles and the responsibilities of ISPs in maintaining hardware, offering practical solutions for listeners to get involved.

Discover the innovative world of Ente Photos, a private app designed with user privacy at its core. Hear from founder Vishnu about his mission to challenge the ad-tech giants and provide a sustainable, non-surveillance alternative. Learn about end-to-end encryption and how Ente safeguards your data while enabling seamless integration on different platforms. Delve into the complexities of migrating from mainstream photo services and the challenges of maintaining privacy. Plus, get a sneak peek at upcoming features aimed at enhancing your secure photo experience!

Discover techniques for uncovering old, forgotten online accounts and enhancing security. Dive into the troubling implications of new technologies, like Samsung's ad-laden smart fridges and automated sextortion spyware. Explore privacy concerns surrounding employee monitoring and government data access. Good news emerges with hardware advancements in the Pixel 10 and iPhone 17. Stay informed about the EU vote on chat control that could impact encrypted communication.

Artificial Intelligence (AI) is the Big Tech buzzword of the day. Every company who wants investment (public or private) is scrambling to have an “AI story”, adding chatbots and ‘agentic’ features in their products wherever possible. The AI companies themselves are constantly expanding their models, ingesting as much data (including highly personal information) as possible. In this AI gold rush, companies are making flawed and often harmful products. Companies are firing workers and trying to replace them with AI bots. And it’s forcing us all to question what’s real, what has actual value, and what the impacts could and should be on society as a whole. Discussing deep questions like this is the purview of philosophers – and today I’ll be welcoming back someone uniquely and supremely qualified to address them, Carissa Véliz. Interview Notes Carissa Véliz: https://www.carissaveliz.com/  Privacy is Power: https://www.carissaveliz.com/books  Carissa’s research: https://www.carissaveliz.com/research  Moral Zombies: https://link.springer.com/article/10.1007/s00146-021-01189-x  ChatGPT suicide: https://www.nytimes.com/2025/08/26/technology/chatgpt-openai-suicide.html  TESCREAL: https://en.wikipedia.org/wiki/TESCREAL  John Oliver on AI Slop: https://www.youtube.com/watch?v=TWpg1RmzAbc  Proton Lumo: https://proton.me/blog/lumo-ai  EU’s “public good” LLM: https://ethz.ch/en/news-and-events/eth-news/news/2025/07/a-language-model-built-for-the-public-good.html  Further Info My book: https://fdsd.me/book  My newsletter: https://fdsd.me/newsletter  Support the mission: https://fdsd.me/support  Give the gift of privacy and security: https://fdsd.me/coupons  Get your Firewalls Don’t Stop Dragons Merch! https://fdsd.me/merch  Table of Contents 0:00:00: Intro 0:05:09: What does “artifical intelligence” really mean? 0:13:21: Should STEM degrees require ethics training? 0:17:20: Does anthropomorphising AI undermine our discourse? 0:22:35: What is the TESCREAL view of AI? 0:28:09: Can we infuse AI tools with human morality? 0:34:31: What are the dangers of training AI on copyrighted works? 0:42:16: What happens when AI starts ingesting it’s own output? 0:44:27: Can we make AI systems that are truly private? 0:48:08: How should we assign liability for AI harms? 0:51:06: Is AI eroding our ability to trust anything? 0:54:06: What happens when AI obviates the need to work at all? 1:00:00: How do we maximize the benefits and minimize the harms of AI? 1:03:20: Interview wrap-up 1:06:06: Patron podcast preview 1:07:08: Looking ahead